HIPAA/BA SERVICES Archives

  • On May 24, the HHS Office for Civil Rights (OCR) released a new fact sheet for Business Associates explaining their liability for HIPAA compliance. OCR is the government enforcement agency for HIPAA compliance. They have the authority to take enforcement action against business associates for failing to comply with requirements and prohibitions. Since the implementationRead more…

  • The days of having your computer work done by your friend’s nephew or the neighborhood fix-it guy are over. Your IT professional needs to be well versed in HIPAA. They also need to be motivated to keep up with the changing threat environment. It can literally save you millions of dollars and sleepless nights. NowRead more…

  • Everything you wanted to know about the OCR Cloud Computing Guidance but were afraid to ask What exactly is the cloud? The cloud is a network of servers used to share resources, software, and information via a network. Each server has a different function. Some servers run applications and some deliver a service. The informationRead more…

  • In May, Great Britain’s National Health Service (NHS) was hit by a large-scale cyber-attack. Some hospitals and practices across England and Scotland were unable to access patient data, after their computers were locked by a ransomware attack demanding payment in virtual currency, Bitcoin. However, there was no evidence that patient data had been compromised. TheRead more…

  • When you have a breach of Protected Health Information (PHI) the practice will have to notify the affected patients, Health and Human Services (HHS) and potentially other parties. The timing is critical. This month we will review notification requirements. Patient Notification You must provide notice to each affected patient in written form by first-class mail,Read more…

  • The very sad truth is the world is full of criminals and you have something they want: information and materials. You may have all technical safeguards in place to protect yourself from computer hackers and break-ins; however,  what are you doing about the stream of people who walk in your office for business purposes?  OneRead more…

  • The HHS Office for Civil Rights (OCR) has announced that the Business Associate Desktop Audits will take place this month, October, 2016. In 2011, OCR decided to expand HIPAA monitoring and enforcing to include random audits. During Phase One they initiated 115 random audits of Covered Entities (CE). Phase Two, Round one occurred in May, 2016Read more…

  •   TMC wants to help you be OSHA and HIPAA compliant in a way that works best for your practice. As you know, we offer different compliance packages according to your practice’s needs. We are putting the spotlight on our eCompliance package which is a self-guided compliance program that lets you keep TMC in yourRead more…